[Git][security-tracker-team/security-tracker][master] new bitcoin issue
Moritz Muehlenhoff
jmm at debian.org
Thu Feb 4 10:42:39 GMT 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6a8230cf by Moritz Muehlenhoff at 2021-02-04T11:42:13+01:00
new bitcoin issue
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2021-3401 (Bitcoin Core before 0.19.0 might allow remote attackers to execute arb ...)
- TODO: check
+ - bitcoin 0.20.1~dfsg-1
CVE-2021-3400
RESERVED
CVE-2021-26689 (An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, ...)
@@ -1636,9 +1636,9 @@ CVE-2021-3281 (In Django 2.2 before 2.2.18, 3.0 before 3.0.12, and 3.1 before 3.
NOTE: https://github.com/django/django/commit/05413afa8c18cdb978fcdf470e09f7a12b234a23 (master)
NOTE: https://github.com/django/django/commit/21e7622dec1f8612c85c2fc37fe8efbfd3311e37 (2.2.18)
CVE-2021-26024 (The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2021-26023 (The Favorites component before 1.0.2 for Nagios XI 5.8.0 is vulnerable ...)
- TODO: check
+ NOT-FOR-US: Nagios XI
CVE-2021-26022
RESERVED
CVE-2021-26021
@@ -2401,53 +2401,53 @@ CVE-2021-25780
CVE-2021-25779
RESERVED
CVE-2021-25778 (In JetBrains TeamCity before 2020.2.1, permissions during user deletio ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25777 (In JetBrains TeamCity before 2020.2.1, permissions during token remova ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25776 (In JetBrains TeamCity before 2020.2, an ECR token could be exposed in ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25775 (In JetBrains TeamCity before 2020.2.1, the server admin could create a ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25774 (In JetBrains TeamCity before 2020.2.1, a user could get access to the ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25773 (JetBrains TeamCity before 2020.2 was vulnerable to reflected XSS on se ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25772 (In JetBrains TeamCity before 2020.2.2, TeamCity server DoS was possibl ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25771 (In JetBrains YouTrack before 2020.6.1099, project information could be ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25770 (In JetBrains YouTrack before 2020.5.3123, server-side template injecti ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25769 (In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator w ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25768 (In JetBrains YouTrack before 2020.4.4701, permissions for attachments ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25767 (In JetBrains YouTrack before 2020.6.1767, an issue's existence could b ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25766 (In JetBrains YouTrack before 2020.4.4701, improper resource access che ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25765 (In JetBrains YouTrack before 2020.4.4701, CSRF via attachment upload w ...)
- TODO: check
+ NOT-FOR-US: JetBrains TeamCity
CVE-2021-25764
RESERVED
CVE-2021-25763 (In JetBrains Ktor before 1.4.2, weak cipher suites were enabled by def ...)
- TODO: check
+ NOT-FOR-US: JetBrains Ktor
CVE-2021-25762 (In JetBrains Ktor before 1.4.3, HTTP Request Smuggling was possible. ...)
- TODO: check
+ NOT-FOR-US: JetBrains Ktor
CVE-2021-25761 (In JetBrains Ktor before 1.5.0, a birthday attack on SessionStorage ke ...)
- TODO: check
+ NOT-FOR-US: JetBrains Ktor
CVE-2021-25760 (In JetBrains Hub before 2020.1.12669, information disclosure via the p ...)
- TODO: check
+ NOT-FOR-US: JetBrains Hub
CVE-2021-25759 (In JetBrains Hub before 2020.1.12629, an authenticated user can delete ...)
- TODO: check
+ NOT-FOR-US: JetBrains Hub
CVE-2021-25758 (In JetBrains IntelliJ IDEA before 2020.3, potentially insecure deseria ...)
- TODO: check
+ - intellij-idea <itp> (bug #747616)
CVE-2021-25757 (In JetBrains Hub before 2020.1.12629, an open redirect was possible. ...)
- TODO: check
+ NOT-FOR-US: JetBrains Hub
CVE-2021-25756 (In JetBrains IntelliJ IDEA before 2020.2, HTTP links were used for sev ...)
- TODO: check
+ - intellij-idea <itp> (bug #747616)
CVE-2021-25755 (In JetBrains Code With Me before 2020.3, an attacker on the local netw ...)
- TODO: check
+ NOT-FOR-US: JetBrains Code With Me
CVE-2021-25754
RESERVED
CVE-2021-25753
@@ -27037,7 +27037,7 @@ CVE-2020-27624 (JetBrains YouTrack before 2020.3.888 was vulnerable to SSRF. ...
CVE-2020-27623 (JetBrains IdeaVim before version 0.58 might have caused an information ...)
NOT-FOR-US: JetBrains
CVE-2020-27622 (In JetBrains IntelliJ IDEA before 2020.2, the built-in web server coul ...)
- NOT-FOR-US: JetBrains
+ - intellij-idea <itp> (bug #747616)
CVE-2020-27621 (The FileImporter extension in MediaWiki through 1.35.0 was not properl ...)
NOT-FOR-US: MediaWiki extension
CVE-2020-27620 (The Cosmos Skin for MediaWiki through 1.35.0 has stored XSS because Me ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a8230cfb40f24b12fb598e5d003bf33de455cdd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a8230cfb40f24b12fb598e5d003bf33de455cdd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210204/5608323d/attachment.html>
More information about the debian-security-tracker-commits
mailing list